$ rpki-client -vvf rpki.apnic.net/member_repository/A9121821/AB22EAC4D54911EE9497D880C4F9AE02/B999A66AD54E11EE842E2F58C4F9AE02.roa File: B999A66AD54E11EE842E2F58C4F9AE02.roa (raw, json) Hash identifier: lawsYWPU6sG/zSMNJA9UvzdkRGaYJkKdFnUsUbkU8/s= Subject key identifier: CA:E0:06:A5:65:70:55:B6:74:AE:06:B6:D9:A7:6A:4B:53:12:91:D5 Certificate issuer: /CN=A9121821/serialNumber=9EBCB0C34E4F77F2278DB15C59E1EDAC7E55756E Certificate serial: 0D Authority key identifier: 9E:BC:B0:C3:4E:4F:77:F2:27:8D:B1:5C:59:E1:ED:AC:7E:55:75:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nryww05Pd_InjbFcWeHtrH5VdW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121821/AB22EAC4D54911EE9497D880C4F9AE02/B999A66AD54E11EE842E2F58C4F9AE02.roa Signing time: Wed 13 Mar 2024 07:49:12 +0000 ROA not before: Wed 13 Mar 2024 07:49:11 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 150736 IP address blocks: 103.77.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121821/AB22EAC4D54911EE9497D880C4F9AE02/nryww05Pd_InjbFcWeHtrH5VdW4.crl rsync://rpki.apnic.net/member_repository/A9121821/AB22EAC4D54911EE9497D880C4F9AE02/nryww05Pd_InjbFcWeHtrH5VdW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nryww05Pd_InjbFcWeHtrH5VdW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121821/serialNumber=9EBCB0C34E4F77F2278DB15C59E1EDAC7E55756E Validity Not Before: Mar 13 07:49:11 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f15a77-c7b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9b:3d:75:23:6c:8d:13:50:6a:3c:4f:28:b8: 7f:03:f2:9b:17:ad:dd:92:c8:50:06:8e:00:2d:2c: 48:e7:1f:0b:71:de:5b:91:2f:f3:62:a2:78:67:22: 33:5b:b4:cc:9e:be:cc:1a:08:7a:0f:eb:ca:d8:42: 94:b6:5f:fa:8e:5f:fa:29:1c:52:66:15:da:8d:6d: 2b:7d:07:e1:a1:d2:07:07:38:ed:68:29:0b:b2:b1: 71:f2:25:c9:c3:bd:b6:93:0c:72:e2:1d:53:54:95: 7f:a4:9d:21:64:ec:a5:7c:1f:d7:bb:9c:9a:90:7a: ec:fd:4f:ab:b3:97:a3:b2:de:37:9d:ae:2d:9e:fd: 98:11:f5:a2:82:02:1c:d9:ac:56:6d:06:36:9b:fa: b5:18:74:c3:e0:47:70:14:95:86:ce:42:17:a0:6b: d6:76:64:90:55:8c:c7:04:29:75:12:0a:14:8a:da: fb:6e:6f:4e:0b:80:24:12:08:2b:0f:eb:66:8f:55: c9:16:ae:4c:f7:da:25:d8:04:26:94:a0:a3:f7:6e: 7f:b5:e7:18:df:3c:36:04:ad:a8:07:74:6d:49:4a: d9:fe:5b:db:c1:06:e3:f8:6d:af:cd:82:ac:aa:e9: 74:48:f7:1f:ba:11:ff:8c:21:b7:24:38:bd:8e:99: 93:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:E0:06:A5:65:70:55:B6:74:AE:06:B6:D9:A7:6A:4B:53:12:91:D5 X509v3 Authority Key Identifier: keyid:9E:BC:B0:C3:4E:4F:77:F2:27:8D:B1:5C:59:E1:ED:AC:7E:55:75:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121821/AB22EAC4D54911EE9497D880C4F9AE02/nryww05Pd_InjbFcWeHtrH5VdW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nryww05Pd_InjbFcWeHtrH5VdW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121821/AB22EAC4D54911EE9497D880C4F9AE02/B999A66AD54E11EE842E2F58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.216.0/23 Signature Algorithm: sha256WithRSAEncryption 33:86:4b:bd:2c:12:71:b5:01:1e:d2:d9:7d:cb:1f:e0:9b:45: 1a:49:34:c5:e8:2e:f5:96:f2:6b:d5:82:7b:00:f3:b7:bb:e2: 60:5e:c9:a4:52:10:71:4a:e7:96:8d:ca:1b:5b:5e:26:20:3e: 62:9e:66:06:36:86:ee:ec:6a:f2:bb:e2:29:3b:69:81:57:15: 4e:e2:b2:3d:84:75:28:33:74:48:fa:35:95:4a:e2:bf:84:83: 23:b1:73:d3:c1:af:de:31:76:8b:be:d3:7a:d3:58:96:f7:2d: aa:c5:45:54:be:e7:99:29:70:ef:b1:df:39:db:ec:62:20:dc: 1f:8e:f9:0e:43:46:fc:ba:d3:c5:7e:d5:b9:9f:b8:c5:ae:32: b3:3c:b8:ce:c1:bc:42:63:7e:f1:20:97:ed:c5:ed:c6:1a:84: 30:70:cb:1c:63:2d:24:95:1e:fb:d8:96:dc:13:fb:df:74:8e: d9:d9:2a:d1:11:7c:22:dc:82:ca:83:8a:ac:2e:d5:9d:f1:02: 86:e8:6a:3a:43:ef:84:ab:c3:2f:86:ab:a1:6f:1e:a6:69:1f: 03:6e:0e:32:93:40:a3:40:a4:2a:e6:32:da:93:75:23:d5:42: e5:a2:bd:ba:b1:99:91:ac:0b:11:39:9b:a2:36:d8:14:95:f4: 7a:6c:75:10 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MTgyMTExMC8GA1UEBRMoOUVCQ0IwQzM0RTRGNzdGMjI3OERCMTVDNTlFMUVEQUM3 RTU1NzU2RTAeFw0yNDAzMTMwNzQ5MTFaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjE1YTc3LWM3YjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvmz11I2yNE1BqPE8ouH8D8psXrd2SyFAGjgAtLEjnHwtx3luRL/NionhnIjNb tMyevswaCHoP68rYQpS2X/qOX/opHFJmFdqNbSt9B+Gh0gcHOO1oKQuysXHyJcnD vbaTDHLiHVNUlX+knSFk7KV8H9e7nJqQeuz9T6uzl6Oy3jedri2e/ZgR9aKCAhzZ rFZtBjab+rUYdMPgR3AUlYbOQhega9Z2ZJBVjMcEKXUSChSK2vtub04LgCQSCCsP 62aPVckWrkz32iXYBCaUoKP3bn+15xjfPDYEragHdG1JStn+W9vBBuP4ba/Ngqyq 6XRI9x+6Ef+MIbckOL2OmZNzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUyuAGpWVw VbZ0rga22adqS1MSkdUwHwYDVR0jBBgwFoAUnryww05Pd/InjbFcWeHtrH5VdW4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxODIxL0FCMjJFQUM0RDU0 OTExRUU5NDk3RDg4MEM0RjlBRTAyL25yeXd3MDVQZF9JbmpiRmNXZUh0ckg1VmRX NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbnJ5d3cwNVBkX0luamJGY1dlSHRySDVWZFc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTgyMS9BQjIyRUFDNEQ1NDkxMUVFOTQ5N0Q4ODBDNEY5QUUwMi9COTk5QTY2QUQ1 NEUxMUVFODQyRTJGNThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdN2DANBgkqhkiG9w0BAQsFAAOCAQEAM4ZLvSwScbUBHtLZ fcsf4JtFGkk0xegu9Zbya9WCewDzt7viYF7JpFIQcUrnlo3KG1teJiA+Yp5mBjaG 7uxq8rviKTtpgVcVTuKyPYR1KDN0SPo1lUriv4SDI7Fz08Gv3jF2i77TetNYlvct qsVFVL7nmSlw77HfOdvsYiDcH475DkNG/LrTxX7VuZ+4xa4yszy4zsG8QmN+8SCX 7cXtxhqEMHDLHGMtJJUe+9iW3BP733SO2dkq0RF8ItyCyoOKrC7VnfEChuhqOkPv hKvDL4aroW8epmkfA24OMpNAo0CkKuYy2pN1I9VC5aK9urGZkawLETmbojbYFJX0 emx1EA== -----END CERTIFICATE-----Generated at Fri Jun 7 11:02:20 2024 by rpki-client on console-fra.rpki-client.org